This course focuses on Linux Privilege Escalation tactics and techniques designed to help you improve your privilege escalation game. Students should take this course if they are interested in:
- Gaining a better understanding of privilege escalation techniques
- Improving Capture the Flag skillset
- Preparing for certifications such as the PNPT, OSCP, eCPPT, CEH, etc.
What will I learn?
- Kernel Exploits
- Password Hunting
- File Permissions
- Sudo Attacks
- Shell Escaping
- Intended Functionality
- LD_PRELOAD
- CVE-2019-14287
- CVE-2019-18634
- SUID Attacks
- Shared Object Injection
- Binary Symlinks
- Environment Variables
- Capabilities Attacks
- Scheduled Tasks
- NFS
- Docker
Syllabus
- Introduction
- Lab Overview & Initial Access
- Initial Enumeration
-
Exploring Automated Tools
- Escalation Path: Kernel Exploits
- Escalation Path: Passwords & File Permissions
- Escalation Path: Sudo
- Escalation Path: SUID
- Escalation Path: Other SUID Escalation
- Escalation Path: Capabilities
-
Escalation Path: Scheduled Tasks
- Escalation Path: NFS Root Squashing
- Escalation Path: Docker
- Capstone Challenge
- Wrapping Up
